CVE-2023-22687

LOW

Jose Mortellaro Freesoul Deactivate Plugins <= 1.9.4.0 - Info Discl...

Title source: llm

Description

Insecure Storage of Sensitive Information vulnerability in Jose Mortellaro Freesoul Deactivate Plugins – Plugin manager and cleanup plugin <= 1.9.4.0 versions.

References (1)

[Third Party Advisory] https://patchstack.com/database/vulnerability/freesoul-deactivate-plugins/wordpress-freesoul-deactivate-plugins-plugin-manager-and-cleanup-plugin-1-9-4-0-content-spoofing?_s_id=cve

Scores

CVSS v3 3.7

EPSS 0.0074

EPSS Percentile 73.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-922

Status published

Products (2)

freesoul_deactivate_plugins_-_plugin_manager_and_cleanup_project/freesoul_deactivate_plugins_-_plugin_manager_and_cleanup < 1.9.4.0

Jose Mortellaro/Freesoul Deactivate Plugins – Plugin manager and cleanup < 1.9.4.0

Published Apr 16, 2023

Tracked Since Feb 18, 2026